CVE-2019-11037
4.9
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Summary
In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix() function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled by untrusted party.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| PHP Group | PHP Imagick extension | 3.4.4 < 3.4.4 | affected |
| PHP Group | PHP Imagick extension | 3.3.0 < 3.3.0* | affected |
Weaknesses
- CWE-787: CWE-787 Out-of-bounds Write
ADP Enrichment
CVE Program Container
Additional References
- https://bugs.php.net/bug.php?id=77791
- http://www.securityfocus.com/bid/108292
- https://github.com/CVEProject/cvelist/pull/1964
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7MQ7WJA25YF2R2LRALK4QEYWUHHJPSUD/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BU66V7QJKD32RXLY5J7Z5NZH4V3VV524/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FME5ZG7DDYWUPPHTTAFJB5OFFCPXYHPS/
- https://www.debian.org/security/2019/dsa-4576
- https://seclists.org/bugtraq/2019/Nov/39
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00016.html
- https://security.gentoo.org/glsa/202003-38
- https://usn.ubuntu.com/4586-1/
References
- https://bugs.php.net/bug.php?id=77791
- http://www.securityfocus.com/bid/108292
- https://github.com/CVEProject/cvelist/pull/1964
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7MQ7WJA25YF2R2LRALK4QEYWUHHJPSUD/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BU66V7QJKD32RXLY5J7Z5NZH4V3VV524/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FME5ZG7DDYWUPPHTTAFJB5OFFCPXYHPS/
- https://www.debian.org/security/2019/dsa-4576
- https://seclists.org/bugtraq/2019/Nov/39
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00016.html
- https://security.gentoo.org/glsa/202003-38
- https://usn.ubuntu.com/4586-1/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.